Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/s22lHhYcooWMXpZqmB0jwD4Lrc4.roa
File: s22lHhYcooWMXpZqmB0jwD4Lrc4.roa (raw, json)
Hash identifier: Kw7FdAhwj7Q4TDVAQMYPPY1u2QFfVQWdnSPnv3Gtoiw=
Subject key identifier: B3:6D:A5:1E:16:1C:A2:85:8C:5E:96:6A:98:1D:23:C0:3E:0B:AD:CE
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F5C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/s22lHhYcooWMXpZqmB0jwD4Lrc4.roa
Signing time: Fri 01 Sep 2023 08:29:02 +0000
ROA not before: Fri 01 Sep 2023 08:29:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 118.150.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3932 (0xf5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B36DA51E161CA2858C5E966A981D23C03E0BADCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:76:90:a1:d9:a9:f8:7c:58:2f:54:59:98:7c:
2d:77:ec:ea:e5:3e:7a:45:db:1a:11:2c:b9:0f:60:
48:3a:75:f6:ee:3d:ee:83:3e:e2:99:7b:e1:95:73:
c3:25:79:23:8d:cc:f8:35:f0:88:02:09:63:44:70:
99:f7:cc:7e:b3:34:40:00:ce:6d:29:22:23:c1:7f:
42:75:dd:0e:99:80:ff:b5:6b:2d:b4:f6:3a:0c:96:
22:e9:a4:92:bf:e5:74:d5:29:fe:f4:0f:e4:3c:25:
45:d9:24:a6:10:4e:db:61:8a:80:d8:65:d9:ae:fe:
e5:fd:36:f5:27:21:b2:72:4f:af:36:64:2d:7e:bb:
32:98:6a:df:ba:da:12:f5:e2:11:cd:28:1f:02:32:
78:48:15:ad:f0:14:9f:3f:a7:cd:56:2d:df:9f:fb:
b5:04:2b:b5:34:60:6f:7e:1c:14:fb:2f:61:e6:24:
71:54:42:16:be:12:f4:26:56:3b:a5:ab:63:a1:1b:
07:39:26:69:91:e5:22:a0:ad:da:84:5f:c5:61:04:
3c:4a:fe:39:52:4f:fb:f6:e3:3d:69:84:5d:8f:de:
c9:c3:9b:83:df:04:99:ea:d1:ed:84:a6:e3:3e:7e:
6e:3c:98:cf:5d:a2:a2:e0:c8:63:93:03:fc:e9:d0:
d0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:6D:A5:1E:16:1C:A2:85:8C:5E:96:6A:98:1D:23:C0:3E:0B:AD:CE
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/s22lHhYcooWMXpZqmB0jwD4Lrc4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.192.0/19
Signature Algorithm: sha256WithRSAEncryption
42:59:6d:dc:c5:b3:8e:3a:33:38:08:bd:5c:d0:6a:fd:84:cd:
5d:5c:76:5f:89:14:d4:47:c7:45:53:3e:92:c3:d6:0a:c4:a8:
34:16:74:51:0e:42:42:6d:ce:28:a4:1f:25:bb:f7:91:95:59:
28:0f:52:aa:f1:7a:58:52:a1:1f:f2:c5:3e:da:c2:c3:14:50:
6b:3d:89:76:a6:c4:a4:4d:eb:50:bd:50:c3:aa:fa:9b:31:ef:
44:f6:d7:4d:c7:8d:12:a2:e2:b9:70:92:20:53:33:2c:95:ae:
2e:59:dc:46:56:54:c7:9b:ec:c9:21:a7:5a:3d:a3:6a:78:e7:
7c:1d:b7:e7:77:2c:e4:57:10:5c:4b:12:51:5c:05:27:7c:c2:
0c:9c:d6:46:61:81:24:7d:93:aa:d7:50:92:58:d3:f0:32:a2:
16:f8:44:a5:f2:d2:5c:00:da:f4:f7:1f:f0:cc:5b:d7:15:9c:
94:ff:19:31:d7:09:ef:ef:ba:c6:5b:40:8c:02:f2:a1:78:03:
10:d5:35:41:70:f4:9f:57:e6:54:a9:27:8a:0a:0a:0a:eb:13:
62:b4:fd:d4:f0:a5:8d:01:82:4c:35:83:58:19:90:2e:d3:51:
30:3a:e6:f8:1b:b0:6e:29:2a:ad:cd:63:47:7d:9c:b9:2d:d4:
34:3e:70:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org